📜

Rules

  1. Does a protocol rule deny the request
  1. Does a protocol rule allow the request
  1. Does a site & content rule deny the request
  1. Does a site & content rule allow the request
  1. Does a packet filter block the request
 

Protocol Rule

No protocol rule created by default will deny all traffic.
ISA Protocol Rule
ISA Protocol Rules

Site and Content Rules

Allow any rule created by default.
Can redirect denied HTTP requests
ISA deny redirect

Bandwidth Rules

bandwidth by ratio
  • Network Allocation - traffic types
  • User Allocation - groups
  • Unused priorities - if reserved used, can be used by others
  • rule order - first rule that matches
  • default rule - if not matching other rules
      • ISA Bandwidth Rules

Authentication

SecureNAT client - no auth - no user or group restrictions
Firewall Client - requires install, only Windows devices
Web Proxy Clients - can use auth
 
  • Basic Authentication - any device can support, details sent in clear text
  • Digest Authentication - Requires IE 5.0+
  • Integrated Windows Authentication - Kerberos , IE 2.0+
  • Client Certificate Authentication - every client needs a certificate
 
Enabled per-server, needs to restart services. Default is intergrated
ISA Server Outgoing Web Requests
ISA Listener Auth